CVE-2024-1904 | MasterStudy LMS Plugin up to 3.2.13 on WordPress search_posts authorization

Posted by Angelo Barbosa | Mar 16, 2024 | CVE

A vulnerability classified as problematic has been found in MasterStudy LMS Plugin up to 3.2.13 on WordPress. This affects the function search_posts. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1904. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1904 | MasterStudy LMS Plugin up to 3.2.13 on WordPress search_posts authorization

Related Posts

CVE-2024-36232 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2023-6574 | Beijing Baichuo Smart S20 up to 20231120 HTTP POST Request /sysmanage/updateos.php 1_file_upload unrestricted upload

CVE-2024-34402 | uriparser up to 0.9.7 UriQuery.c ComposeQueryEngine integer overflow (ID 183)

CVE-2024-6633 | Fortra FileCatalyst Workflow up to 5.1.6 Build 139 HSQL Database information disclosure